Multiple SQL injection vulnerabilities in Active Bids allow remote attackers to execute arbitrary SQL commands via the (1) search parameter to search.asp, (2) SortDir parameter to auctionsended.asp, and the (3) catid parameter to wishlist.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-02-05T00:00:00
Updated: 2018-10-11T19:57:01
Reserved: 2009-02-04T00:00:00
Link: CVE-2009-0429
JSON object: View
NVD Information
Status : Modified
Published: 2009-02-05T00:30:00.517
Modified: 2018-10-11T21:01:46.137
Link: CVE-2009-0429
JSON object: View
Redhat Information
No data.
CWE